Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microfocus enterprise server vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2018-12469
Incorrect handling of an invalid value for an HTTP request parameter by Directory Server (aka Enterprise Server Administration web UI) in Micro Focus Enterprise Developer and Enterprise Server 2.3 Update 2 and previous versions, 3.0 before Patch Update 12, and 4.0 before Patch Up...
Microfocus Enterprise Developer 2.3
Microfocus Enterprise Server 2.3
Microfocus Enterprise Server
Microfocus Enterprise Developer 4.0
Microfocus Enterprise Server 4.0
Microfocus Enterprise Developer 3.0
Microfocus Enterprise Server 3.0
Microfocus Enterprise Developer
NA
CVE-2023-32265
A potential security vulnerability has been identified in the Enterprise Server Common Web Administration (ESCWA) component used in Enterprise Server, Enterprise Test Server, Enterprise Developer, Visual COBOL, and COBOL Server. An attacker would need to be authenticated into ES...
Microfocus Cobol Server 7.0
Microfocus Cobol Server 8.0
Microfocus Cobol Server 6.0
Microfocus Visual Cobol 7.0
Microfocus Visual Cobol 8.0
Microfocus Visual Cobol 6.0
Microfocus Enterprise Developer 7.0
Microfocus Enterprise Developer 8.0
Microfocus Enterprise Developer 6.0
Microfocus Enterprise Test Server 7.0
Microfocus Enterprise Test Server 8.0
Microfocus Enterprise Test Server 6.0
Microfocus Enterprise Server 7.0
Microfocus Enterprise Server 8.0
Microfocus Enterprise Server 6.0
NA
CVE-2023-4501
User authentication with username and password credentials is ineffective in OpenText (Micro Focus) Visual COBOL, COBOL Server, Enterprise Developer, and Enterprise Server (including product variants such as Enterprise Test Server), versions 7.0 patch updates 19 and 20, 8.0 patch...
Microfocus Cobol Server 9.0
Microfocus Cobol Server 8.0
Microfocus Cobol Server 7.0
Microfocus Visual Cobol 9.0
Microfocus Visual Cobol 8.0
Microfocus Visual Cobol 7.0
Microfocus Enterprise Developer 9.0
Microfocus Enterprise Developer 8.0
Microfocus Enterprise Developer 7.0
Microfocus Enterprise Test Server 9.0
Microfocus Enterprise Test Server 8.0
Microfocus Enterprise Test Server 7.0
Microfocus Enterprise Server 9.0
Microfocus Enterprise Server 8.0
Microfocus Enterprise Server 7.0
6.5
CVSSv2
CVE-2020-9523
Insufficiently protected credentials vulnerability on Micro Focus enterprise developer and enterprise server, affecting all version before 4.0 Patch Update 16, and version 5.0 Patch Update 6. The vulnerability could allow an malicious user to transmit hashed credentials for the u...
Microfocus Enterprise Developer 4.0
Microfocus Enterprise Developer 5.0
Microfocus Enterprise Developer
Microfocus Enterprise Server 4.0
Microfocus Enterprise Server 5.0
Microfocus Enterprise Server
4.3
CVSSv2
CVE-2019-11651
Reflected XSS on Micro Focus Enterprise Developer and Enterprise Server, all versions prior to version 3.0 Patch Update 20, version 4.0 Patch Update 12, and version 5.0 Patch Update 2. The vulnerability could be exploited to redirect a user to a malicious page or forge certain ty...
Microfocus Enterprise Developer 3.0
Microfocus Enterprise Server 3.0
Microfocus Enterprise Developer 4.0
Microfocus Enterprise Server 4.0
Microfocus Enterprise Developer 5.0
Microfocus Enterprise Server 5.0
6.8
CVSSv2
CVE-2017-5187
A Cross-Site Request Forgery (CWE-352) vulnerability in Directory Server (aka Enterprise Server Administration web UI) in Micro Focus Enterprise Developer and Enterprise Server 2.3 and previous versions, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote...
Microfocus Enterprise Server Monitor And Control -
Microfocus Enterprise Developer 2.3
Microfocus Enterprise Server 2.3
Microfocus Directory Server -
Microfocus Enterprise Server
4.3
CVSSv2
CVE-2017-7421
Reflected and stored Cross-Site Scripting (XSS, CWE-79) vulnerabilities in Directory Server (aka Enterprise Server Administration web UI) and ESMAC (aka Enterprise Server Monitor and Control) in Micro Focus Enterprise Developer and Enterprise Server 2.3 and previous versions, 2.3...
Microfocus Enterprise Server Monitor And Control -
Microfocus Enterprise Developer 2.3
Microfocus Enterprise Server 2.3
Microfocus Directory Server -
Microfocus Enterprise Server
7.5
CVSSv2
CVE-2017-7420
An Authentication Bypass (CWE-287) vulnerability in ESMAC (aka Enterprise Server Monitor and Control) in Micro Focus Enterprise Developer and Enterprise Server 2.3 and previous versions, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote unauthenticated ...
Microfocus Enterprise Server Monitor And Control -
Microfocus Enterprise Developer 2.3
Microfocus Enterprise Server 2.3
Microfocus Enterprise Server
4.3
CVSSv2
CVE-2019-3490
A DOM based XSS vulnerability has been identified in the Netstorage component of Open Enterprise Server (OES) allowing a remote malicious user to execute javascript in the victims browser by tricking the victim into clicking on a specially crafted link. This affects OES versions ...
Microfocus Open Enterprise Server 2015.1
Microfocus Open Enterprise Server 2018.0
Microfocus Open Enterprise Server 2018.1
3.5
CVSSv2
CVE-2017-7422
Reflected and stored Cross-Site Scripting (XSS, CWE-79) vulnerabilities in esfadmingui in Micro Focus Enterprise Developer and Enterprise Server 2.3, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allow remote authenticated malicious users to bypass protection mec...
Microfocus Enterprise Server 2.3
Microfocus Enterprise Developer 2.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »